PT-2026-37092 · Redis+1 · Redis-Server+2

Emil Lerner

Published

2026-05-05

Updated

2026-06-15

CVE-2026-25243

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions redis-server versions prior to 8.6.3

Description Redis is an in-memory data structure store. The RESTORE command fails to properly validate serialized values. An authenticated attacker with permissions to execute this command can provide a crafted serialized payload, triggering invalid memory access which may lead to remote code execution.

Recommendations Update to version 8.6.3. Restrict access to the RESTORE command using ACL rules as a temporary workaround.

Exploit

Fix

RCE

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122CWE-20

Related Identifiers

ALSA-2026:23229

ALSA-2026:25219

ALSA-2026:26008

BDU:2026-06448

BIT-KEYDB-2026-25243

BIT-REDIS-2026-25243

BIT-VALKEY-2026-25243

CVE-2026-25243

OESA-2026-2237

OPENSUSE-SU-2026:10711-1

OPENSUSE-SU-2026:10719-1

RHSA-2026:23229

RHSA-2026:25216

RHSA-2026:25219

Affected Products

Redis

Rocky Linux

Redis-Server

PT-2026-37092 · Redis+1 · Redis-Server+2

CVE-2026-25243

Weakness Enumeration

Related Identifiers

Affected Products

References · 59